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WILLIAM L. ANTHONY (State Bar No 106908) 
ERIC L. WESENBERG (State Bar No. 139696) 
MARK R. WEINSTEIN (State BarNo^3043) 
ORRICK. HERRINGTON & SUTCLIFFE LLP 
1000 Marsh Road 
Menlo Park, CA 94025 
Telephone: (650)614-7400 
Facsimile: (650)614-7401 

STEVEN ALEXANDER (admitted Pro Hac Vice) 
KRISTIN L. CLEVELAND (admitted Pro Hac Vice) 
JAMES E. GERINGER (admitted Pro Hac Vice) 
JOHN D. VANDENBERG (admitted Pro Hac Vice) 
KLARQUIST SPARKMAN, LLP 
One World Trade Center, Suite 1600 
121 S.W. Salmon Street 
Portland, OR 97204 
Telephone: (503)226-7391 
Facsimile: (503)228-9446 

Attorneys for Defendant 
MICROSOFT CORPORATION 


UNITED STATES DISTRICT COURT 
NORTHERN DISTRICT OF CALIFORNIA 
OAKLAND DIVISION 


INTERTRUST TECHNOLOGBES 
CORPORATION, a Delaware corporation. 

Plaintiff; 


V. 


MICROSOFT CORPORATION, a 
Washington Coiporation, 

Defendant 


CASE NO: C 01-1640 SEA 

MICROSOFT CORPORATION'S 
FIRST AMENDED ANSWER AND 
COUNTERCLAIMS TO THE SECOND 
AMENDED COMPLAINT 


Defendant Microsoft Corporation ("Microsoft") answers the Second Amended 
Complaint of InterTrust Technologies Corporation ("IntcrTrust") as follows: 

I . Microsoft admits that the Second Amended Complaint purports to state a 
cause of action under the patent laws of the United States, 35 United States Code, §§ 271 and 


IjAm. Microsoft denies thai it has infringed or now infringes the patents asserted agamst Microsoft 
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1 the Second Amended Complaint. Microsoft denies any and all remaining allegations of 
aragraph 1 of the Second Amended Complaint. 

2. Microsoft admits that the Second Amended Complaint purports to state a 
ause of action ovct which ftis Court has subject matter jurisdiction mdet 28 U.S.C. §§ 1331 and 
338(a). 

3. Microsoft admits, for purposes of this action only, that venue is proper in 
his judicial district Microsoft denies any and all remaining allegations of paragraph 3 of the 
Second Amended Complaint. 

4. Upon information and belief; Microsoft admits the allegations of paragraph 

[ of the Second Amended Complaint. 

5. Microsoft admits the allegations of paragr^h 5 of the Second Amended 

^mplaint. 

6. Microsoft admits, for purposes of this action only, that it transacts business 
n this judicial district. Microsoft denies any and all remaining allegations of paragraph 6 of the 
>econd Amended Complaint. 

7. Microsoft admits that on its face the tide page of U.S. Patent No. 6,1 85,683 
31 ("the '683 Patent") states that it was issued February 6, 2001, is entitled "Trusted and secure 
echniques, systems and methods for item delivery and execution," and lists "InterTrust 
fechnologies Corp." as the assignee.. Microsoft admits that a copy of titie '683 Patent was 
ittached to the copy of the Second Amended Complaint delivered to counsel for Microsoft, but 
lenies that such copy was full and complete insofar as it did not include any material purportedly 
ncorporatcd by reference therein. Microsoft denies that the '683 Patent was duly and lawfiilly 
ssued. Microsoft fiirther denies any and all remaining allegations of paragraph 7 of the Second 
f^ended Complaint. 

8. Microsoft admits that on its face the title page of U.S. Patent No. 6,253,193 
Bl ("the '193 Patent") states that it was issued June 26, 2001, is entitled "Systems and mediods 
for the secure transaction management and electronic rights protection," and lists "InterTrust 
Technologies Corporation" as the assignee. Microsoft admits that a copy of text associated with 
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1 the '193 Patent was attached to the copy of the Second Amended Complaint deUvered to counsel 

2 I for Microsoft, but denies that such copy was flill and complete as it did not include, among other 

3 things, any ofthe drawings or figures. Microsoft tother denies such copy was full and complete 
insofar as it did not include any material purportedly incorporated by reference therein. Microsoft 
denies that the '193 Patent was duly and lawfiiDy Issued. Microsoft fiirther denies any and all 
remaining allegations of paragraph 8 of the Second Amended Complaint. 

9. Microsoft admits that on its face the title page of U.S. Patent No. 5,940,504 
("the '504 Patent") states that it was issued August 1 7. 1 999 and is entitled "Licensing 
management system and method in which datagrams including an addressee of a Ucensee and 
indicative of use of a licensed product are sent from the Ucensee's site." Microsoft admits that a 

1 1 copy of the '504 Patent was attached to the copy of the Second Amended Complaint deUvered to 

12 I counsel for Microsoft. Microsoft denies that the *504 Patent was duly and lawfiUIy issued. 
Microsoft fiuther denies any and all remaining allegations of paragraph 9 of the Second Amended 
Complaint. 

10. Microsoft admits that on its face the title page of U.S. Patent No. 5,920,861 
("the '861 Patent") states that it was issued July 6, 1999, is entitled "Techniques for defining, 
using and manipulating rights managemMit data structures," and lists "InteiTrust Technologies 
Corp." as the assignee. Microsoft admits that a copy of the '861 Patent was attached to the copy 
of the Second Amended Complaint delivered to counsel for Microsoft, but denies that such copy 
was full and complete insofar as it did not include any material purportedly incorporated by 
reference therein. Microsoft denies that the '861 Patent was duly and lawfiilly issued. Microsoft 
further denies any and all remaining allegations of paragraph 10 of the Second Amended 
Complaint. 

1 1 . Microsoft repeats and reasserts its responses to paragraphs 1-7 of the 
Second Amended Complaint, as if fiilly restated herein. 

12. Microsoft admits that the Second Amended Complaint purports to state a 
cause of action under 35 U.S.C. §§ 271 and 281. Microsoft denies that it has infringed or now 

28 \ infringes the patents asserted against Microsoft in the Second Amended Complaint. Microsoft 
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I denies any and aU remaining allegations of paragraph 12 of the Second Amended Complaint 
13. Microsoft denies any and all allegations of paragraph 13 of the Second 


3 j Amended Complaint. 
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14. Microsoft denies any and all allegations of paragraph 14 of the Second 

Amended Complaint. 

15. Microsoft denies any and allaUegations of paragraph 15 of the Second 

Amended Complaint. 

16. Microsoft denies any and all aUegations of paragraph 16 of the Second 


9 I Amended Complaint. 


10 


11 I Amended Complaint. 


17. Microsoft denies any and all allegations of paragraph 17 of the Second 
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1 8. Microsoft repeats and reasserts its responses to paragraphs 1*6 and 8 of the 
Second Amended Complaint, as if fiilly restated herein. 

1 9. Microsoft admits that die Second Amended Complaint purports to state a 
cause of action under 35 U.S.C. §§ 271 and 281. Microsoft denies that it has infiinged or now 
infringes the patents asserted against Microsoft in the Second Amended Complaint. Microsoft 
denies any and all remaining allegations of paragraph 19 of the Second Amended Complaint 

20. Microsoft denies any and all allegations of paragr^h 20 of the Second 
Amended Complaint. 

21 . Microsoft denies any and all allegations of paragraph 21 of the Second 

Amended Complaint 

22. Microsoft denies any and all allegations of paragraph 22 of the Second 

Amended Complaint. 

23 . Microsoft denies any and all allegations of paragraph 23 of the Second 

Amended Complaint. 

24. Microsoft denies any and all allegations of paragraph 24 of the Second 


27 I Amended Complaint- 

n 
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25. Microsoft repeats reasserts its responses to paragraphs 1-6 and 9 of the 
2 I Second Amended Complaint, as if folly restated herein. 

26. Microsoft admits t{at the Second Amended Complaint purports to state a 
4 causeofactionunder35U.S.C.§§27lajid281. Microsoftdeniesthatithasinfringedornow 

infringes the patents asserted against Microsoft in the Second Amended Complaint. Microsoft 
denies any and all remaining allegations k paragraph 26 of the Second Amended Complaint. 

Microsoft denies any and all allegations of paragraph 27 of the Second 


27. 


Amended Complaint. 


28. Microsoft denies ^y and all allegations of paragraph 28 of the Second 


10 j Amended Complaint. 

n 


29. Microsoft denies any and all allegations of paragraph 29 of the Second 
12 j Amended Complaint. 
13 


14 
15 
16 
17 
18 
19 
20 
21 
22 
23 
24 
25 


30. Microsoft denies any and all allegations of paragraph 30 of the Second 

I 

Amended Complaint. 

3 1 . Microsoft denies any and all allegarions of paragraph 3 1 of the Second 

Amended Complaint. 

32. Microsoft repeatsjand reasserts its responses to paragraphs 1-6 and 10 of 
the Second Amended Complaint, as if fiiuy restated herein. 

33 . Microsoft admits that the Second Amended Complaint puiports to sUie a 
cause of action under 35 U.S.C. §§ 271 and 281. Microsoft denies that it has mfiinged or now 
infringes the patents asserted against Microsoft in the Second Amended Complaint. Microsoft 
denies any and all remaining allegations! of paragraph 33 of the Second Amended Complaint. 

34. Microsoft denies 'any and all allegations of paragraph 34 of the Second 
Amended Complaint. 

35- 


Microsoft denies, any and all allegations of paragraph 35 of the Second 


26 1 Amended Complaint. 


27 


36. Microsoft denies any and all allegations of paragraph 36 of the Second 
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37. Microsoft denies any and all allegations of paragraph 37 of the Second 

Amended Complaint. 

38. Microsoft denies any and all allegations of paragraph 38 of the Second 

Amended Complaint. 

AFFIRMATIVE AND OTHER DEFENSES 
Further answering the Seciond Amended Complaint, Microsoft asserts the 
following defenses. Microsoft reserves the right to amend its answer with additional defenses as 
further information is obtained. 

First Defense: Noninfringemeitt of the Asserted Patents 

1 . Microsoft has not mfiinged, contributed to the infringement of, or induced 
the infringement of U.S. Patent No. 6.185,683 Bl C^e '683 Patent"). US. Patent No. 6,253,193 
Bl (**the *193 Patenf 0, U.S. Patent No. 5.940,504 C*the *504 Patent") or U.S. Patent No. 
5,920,861 ("the '861 Patent"), and is not liable for infringement thereof. 

2. Any and all Microsoft products or actions that are accused of infringement 
have substantial uses that do not infringe and therefore cannot induce or contribute to the 
infringement of the *683 Patent, the ^193 Patent, the *504 Patent or the '861 Patent. 

Second Defense; Invalidity of the Asserted Patents 

3. On information and beUet the '683 Patent, tlie '193 Patent, the '504 Patent 
and the '861 Patent are invalid for failinjg to comply with the provisions of the Patent Laws, Title 
35 U.S.C., including without limitation one or more of 35 U.S.C. §§ 102, 103 and 112. 

Third Defense; Unavailability of Relief 

4. On information and beUef, Plaintiffhas failed to plead and meet the 
I requirements of 35 U.S.C. § 271(b) and is not entitled to any alleged damages prior to providing 

24 any actual notice to Microsoft of the '683 Patent the '193 Patent, the '504 Patent or the '861 

25 |Pateni. 

Fourth Defense: Upavailabilitv of Relief 

5. On infomialion and behef, Plaintiffhas failed to plead and meet the 
requitemenis of 35 U.S.C § 284 for enhanced damages and is not entitled to any damages pnor 
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roviding any actual notice to Microsoft of the -683 Patent, the '193 Patenr. the '504 Patent, 
id/or the '86 1 Patent, and any alleged infiingement thereof. 

Fifth Defeo^gj llnavailab ilitv of Relief 

6. On infonnation and belief. Plaintiffhasfidled to plead and meet the 
jquirements of 35 U.S-C. § 287. and has otherwise failed to show that it is entiUed to any 
amages. 

Sixth Defense! Prosecution Historv Estoppel 

7. PlaintiflPs alleged causes of action forpatent infringement are haired under 

ae doctrine of prosecution history estoppel, and Plaintiffis estopped torn claiming that the '683 

'atent, the '193 Patent, the '504 Patent, and/or the '861 Patent covers or includes any accused 

Microsoft product or method. 

Seventh Defease; Dedication to the Public 

8. Plaintiff has dedicated to the public all methods, apparatus, and products 
[isclosed in the '683 Patent, the '193 Patent, the '504 Patent, and/or the '861 Patent, but not 
Lterally claimed therein, and is estopped from claiming infringement by any such public domain 
nethods, apparatus, and products. 

Eighth Defense: UseManufacture Bv/For United S tates Government 

9. To the extent tiiat any accused product has been used or manufactured by 
)r for the United States, Plaintiffs claims and demands for relief are barred by 28 U.S-C. § 1498. 

Ninth Defense: License 

1 0. To the extent that any of Plaintiff's allegations of infringement are 
)remised on the alleged use. sale, or offer for sale of products that were manufactured by or for a 
icensee of InterTrust and/or provided by or to Microsoft to or by a licensee of InterTrust, such 
illegations are barred pursuant to license. 

Tenth Defense: Acouiescepce 

1 1 . Plaintiff has acquiesced in at least those acts of Microsoft thai are aUeged 
to infringe the '861 Patent, the '683 Patent, and the '193 Patent. 
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yjeventb Defense: Laches 

12 Plaintiffs claims foirelief are barred, in whole or in part, by the equitable 

I 

doctrine of laches . ! 

Twelfth Defense; Inequitable Conduct 

13. The '861 Patent claims are unenforceable due to inequitable conduct, 

6 I including those acts and failures to act set.forth in Microsoft's Counterclaim for Declaratory 

7 I Judgment of Unenforceability of the '861 iPatent, set forth below, 
g I rOITNTERCLAlMS 
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COXJNTi I - DECLARATORY 
.TUDGMENT OF NONINFRINGEMENT 

1. This action arises under the patent laws of the United States, Title 35 
U.S.C- §§ 1, et seq. This Court has subject matter jurisdiction over tiiis counterclaim under 28 
U.S.C.§§ 1338, 2201, and 2202. . ; 

2. Microsoft Corporation C*Microsoft") is a Washington corporation with its 
principal place of business in Redmond, Washington. 

3. Upon information and belief. Plaintiff /Counierclaim Defendant InterTrust 
Technologies Corporation ("InterTrust") is a Delaware corporation with its principal place of 


& SClCLlFFE LLP 



business in Santa Clara, California. 

4. InterTrust purports to be the owner of U.S. Patent Nos, 6,1 85,683 Bl ("the 
'683 Patent"), 6,253.193 Bl ("the '193 Intent"), 5.940,504 C*the '504 Patent"), and 5.920,861 

! i 

C^the*861 Patent"). ! 

5. InterTrust alleges that Microsoft has infringed the '683 Patent, the '193 

Patent, the '504 Patent, and the 'Sfijl Patent. 

6. No Microsoft product has infringed, either directly or indirectly, any claim 
of the '683 Patent, the '193 Patentee '504 Patent, or the '861 Patent, and Microsoft is not liable 
for infiingement thereof. 
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^ I . 7. An actual controversy, within the meaning of 28 U.S.C. §§ 2201 and 2202, 

2 I exists between Microsoft, on the one hand, and InterTrust, on the other hand, with respect to the 
infiingement or noninfringement of the '683 Patent, the U93 Patent, the '504 Patent, and/or the 
'861 Patent 


COUNT U - DECLARATORY 
JUDGMENT OF INVALIDITY OF THE '683 PATENT 

i 

8. Microsoft repeats and realleges paragraphs 1-5 of its Counterclaims, as if 

fully restated herein. 

9. The *683 Patent, and each claim thereof, is invalid for failing to comply 


10 with the provisions of the Patent Laws, including one or more of 35 U.S,C. §§ 102, 103 and 1 12, 


10. An actual controversy, within the meaning of 28 U.S.C §§ 2201 and 2202, 

exists betweoi Microsoft, on the one hand,' and InteiTrust. on the other hand, vnth respect to 

whether the claims of the '683 Patent are Valid or invalid. 

COUNT in - DECLARATORY 
JUDGMENT OF INVALIDITY OF THE '193 PATENT 

11. Microsoft repeats and realleges paragraphs 1-5 of its Counterclaims as if 
fully restated herein. 

12. The '193 Patent, and each claim thereof, is invalid for failing to comply 
with the provisions of the Patent Laws, including one or more of 35 U.S.C. §§ 102, 103 and 1 12. 

13. An actual controversy, within the meaning of 28 U.S.C. §§ 2201 and 2202, 
exists between Microsoft, on thejone hani and InterTiust, on the other hand, with respect to 
whether the claims of the '193 Patent are valid or invalid. 

. COUNT iv - DECLARATORY 
■niDGMENT OF INVALIDITY OF THE 'S04 PATENT 

25 14. Microsoft repeats and realleges paragraphs 1-5 of its Counterclaims as if 

26 I fully restated herein. 

,7 I 15 .. The ' 504 Patent, and each claim thereof, is invalid for failing to comply 

28 I with the provisions of the Patent Laws, including one or more of 35 U.S.C. §§ 102. 103 and 112, 

OKHICk I DOCSSVl.lbC096.l M,CROSOFrC0WORATlOK•sFlRSTAME^'DEDA,NSWER 
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16. 


An actual controvei^y. within the meaning of 28 U.S.C. §§ 2201 and 2202, 


exists between Microsoft, on the one hancK 


and InterTrust, on the other hand, with respect to 
whether the claims of the ' 504 Patent are valid or invalid. 


COUNTiji' - DECLARATORY 
■ninCMENT HTT Tl>rvrkLlDITY OF THE <861 PATENT 


■n 

17. Microsoft repeats m realleges paragraphs 1-5 of its Counterclaims as if 

fully restated herein. j '' 

18: The '861 Patent, aoid each claim thereof, is invalid for foiling to comply 
< I 

with the provisions of the Patent Laws, incjluding one or more of 35 U.S.C. §§ 102. 103 and 112. 

19. An actual controversy, within the meaning of 28 U.S.C. §§ 2201 and 2202, 

exists between Microsoft, on the one handl and InterTrust, on the other hand, with respect to 

whether the claims of the '861 Patent ar© yalid or invalid. 

COUNT VI - DECLARATORY JUDGMENT 
nir TTNFNFQRCEABILITV OF THE *86 1 PATENT 

20. Microsoftjepeats knd realleges paragraphs 1 -5 of its Counterclaims, as if 
fully restated herein. ! . 

• ' ri 

21. Claims 1-129 of thte '861 Patent application (SN 08/805,804), and claims 
1-101 of the '861 Patent, were not.and ar^ not entitled to benefit of any application filing date 
prior to Febmary 25, 1997, under 35 U.SJC § 120 or otherwise. 

22. Exhibit A>ereto is a reprint of an article entitled "Digibox: A Self- 
Protecting Container for Informatipn Cornmerce.^' The article shown in Exhibit A (hereafter, 

Sibert article") was pubUshed^in Ju^ 1995 in the Proceedings of the First USENDC 
Workshop on Electronic Commerce. ; 

23 On information an'd belief, the content of pages 2-1 4 of Exhibit A was 
presented at a public conference in the United States in July 1995. 

24. Exhibit B hereto is a copy of a page from an International Application 
published under the Patent Cooperation Treaty (PCT). bearing International Publication Number 
WO 96/27155. 

DOC5SVl:l60C596.l 
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25-' OninfomatiQ^andjbeUef^MemationalAppUcationW 

all times since its filing date, been oWued controlled by InterTmst or its predecessors in 

: I 

interest. i; ; - 

26. Intemational Xppuiation WO 96/27155 (hereafter "the WO 96/27155 

(PCT) publication") was published on September 6. 1996, 

27. United States' Patent No. 5.9 10.987 ("the '987 Patent") issued on June 8, 


7 1 1999, from a continuation of an api^licaticjn filed on February 13, 1995. 
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28- The Sibert article ii prior art to claims 1-129 of the '861 Patent appUcation 
(SN 08/805,804), and claims 1-101 |bf the '861 Patent, under35 U.S.C, §§ 102(b), 103. 

29. The WO 96/271 55i(PCT) publication is prior ait to claims 1-129 of the 
•861 Patent application (SN 08/805i804)jand claims MOl of the '861 Patent, under 35 U.S.C. §§ 

102(a), 103. !■ i- 

30. The/987 Patent isjprior art to claims 29429 of the '861 Patent application 

i' r 

(SN 08/805,804), and claims l-lOljof thp61 Patent, under 35 U.S.C- §§ 102(e). 103. 

31. The Sibert article vjas material to the patentability of claim 1 of the '86 1 

i ; 

Patent application (SN 08/805,804). ; 

32- The Sibert article was material to the patentability of claims 2-129 of the 

'861 Patent application (SN 08/805,804)i : 

33. The WO 96/i27155i(PCT) publication was material to the patentabihty of 

claim 1 of the '861 Patent application (STjl 08/805,804). 

I 

34. The WO 96i'27155;(PCT) publication was material to the patentability of 

I: I 

claims 2-129 of the '861 Patent ajipUcatipn (SN 08/805.804). 

35. The "987 Patent was material to the patentability of claims 29-129 of the 

' 861 Patent application (SN 08/805,804) ■ 

36. One or mo^ of the '861 Patent appUcants knew, while the '861 Pateni 
application (SN 08/805.804) was pending, of the July 1995 publication of the Sibert article. 

37. On information and beUef. one or more of the '861 Patent applicants knew, 
while the '861 Patent application (SN 08/805,804) was pending, of the September 1996 
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38 . One or more of the 
application (SN 08/805,804) was pending 

39. On infonnation anc 


861 Patent applicants knew, while the '861 Patent 
of the June 8, 1999 issuance of the *987 patent 
belief one or more of the attorneys who prosecuted or 
assisted in prosecuting the '861 Patent application (SN 08/805.804) knew, while that appUcation 
was pending, of the July 1 995 publication of the Sibert article. 

40. One or more of the attorneys who prosecuted or assisted in prosecuting the 
'861 Patent application (SN 08/805.804) knew, while that application was pending, of the 
September 1996 pubUcation of the WO 96A27155 (PCX) publication. 

41 . One or more of the attorneys who prosecuted or assisted in prosecuting the 
'861 Patent application (SN 08/805,804) knew, while that spplication was pending, of the June 8, 
1999 issuance of the '987 patent, i 

42. The applicants for the '86 1 Patent did not cite the Sibert article, the WO 
96/27155 (PCX) publication, or the '987 Patent to the Patent Office as prior art to any of claims 1- 
129 of the *861 Patent application (SN 08/805,804). 

43. The applicants for the '861 Patent did not cite to the Patent Office as prior 
art to any of claims 1-129 of the '861 Paient application (SN 08/805,804) any reference having 

18 I the same or substantially the same disclosure as the Sibert article, the WO 96/27155 (PCT) 

19 j publication, or the '987 Patent. 

44. None of the Sibert article, the WO 96/27155 (PCT) publication, or the '987 
Paient is merely cumulative over any reference cited as prior art during the prosecution of the 
'861 Paient application (SN 08/805,804). 

On infoimatibn and belief, one or more of the '861 Patent ^plicants 
1 of the *86l Patent application (SN 08/805.804), that the 
Sibert article disclosed an embodiment of claim 1 of the '861 Patent appUcation (SN 08/805,804). 

46. On information and belief; one or niore of the ' 861 Patent apphcants 
believed, during pendency of claim 1 of the '861 Patent application (SN 08/805,804), that the 
WO 96/27155 (PCT) publication disclosed an embodiment of claim 1 of the '861 Patent 
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25 
26 
27 
28 


45. 


believed, during pendency of claim 
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1 I application (SN 08/805.804). 


2 
3 
4 
5 
6 
7 
8 
9 


47. On information and 
beUeved, while the '861 Patent application 
was material to the patentability of claims 


48. On infoimation and 
believed, while the '861 Patent application 


t>eUef, one or more of the '861 Patent applicants 
(SN 08/805,804) was pending, that the Sibert article 
M29 of the '861 Patent application (SN 08/805,804), 


but, with deceptive intent, failed to disclo^ that reference as prior art to the Patent Office. 


belief, one or more of the '861 Patesnt applicants 
(SN 08/805,804) was pending, that the WO 96/27155 
(PCT) pubUcation was material to the patentability of claims 1-129 of the '861 Patent appUcation . 
(SN 08/805,804), but, with deceptive intent, ftiled to disclose that reference as prior art to the 


10 1 Patent Office. 


49. On information and belief, one or more of flie '861 Patent applicanU 
12 I beheved, while the '861 Patent applicatiai (SN 08/805.804) was pending, thai the '987 Patent 


.29-129 of the '861 Patent ^plication (SN 08/805,804), 
but, with deceptive intent, failed to disclose that reference as prior art to the Patent Office. 

50. The '861 Patent is menforceable due to the inequitable conduct of the '861 
Patent applicants before the Patent and Trademark Office in connection with the '861 Patent 
application (SN 08/805,804). 

51. An actual controveasy, within the meaning of 28 U.S.C. §§ 2201 and 2202. 
exists between Microsoft, on the one hank and InterTiust, on the other hand, with respect to 

li 

whether the claims of the ' 86 1 Patent are enforceable. 

COUNT jWa - INFRINGEMENT 
OF U.S, PATENT NO. 6.049,671 

52. Microsoft repeats Ld realleges paragraphs 2-3 of its Counterclaims, as if 
fully restated herein. 

53. This Court has exclusive subject matter jurisdiction over Microsoft's cause 
of action for patent infringement under ijitle 28, United States Code, Sections 1331 and 1338. and 
under the patent laws of the United States, Title 35 of the United States Code. 


HEtlRINCTON 
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3 
4 
5 
6 
7 
8 
9 
10 
11 
12 
13 
14 
15 
16 
17 
18 
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20 
21 
22 
23 
24 
25 
26 
27 
28 
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54. U.S. Patent No; 6,049.671 Cihe '671 Patent") issued to Microsoft 
2 1 Corporation as the assignee of Benjamin | Slivka and Jeffrey S. Webber on AptU 1 1. 2000. 

55. A true copy of itbe '^71 Patent is attached as Exhibit C hereto, and is 
incorporated herein by reference. ; 

Microsoft owns all ri^t, title and interest in the '671 Patent 


56. 

57. iDteiTrust has had actual notice ofthe '671 Patent. 

58. InterTmst has 'infiinged one or more claims of the '671 Patent, in violation 

of at least 35 U.S.C. § 271(a, b, c). 

59. InteiTrusfs infiingpnent of the '671 Patent has caused and wiU continue to 
cause Microsoft damage, including irrepJrable ham for which it has no adequate remedy at law. 

COUNT ym - INFRINGEMENT 
OF IJ.S. PATKNT NO. 6.256.668 


60. Microsoft repeats and reaUeges paragraphs 2-3 and 5 1 of its Counterclaims. 

as if fiiUy restated herein. '. 

61 . U.S. Patent No. 6,256,668 Bl ("the '668 Patent'*) issued to Microsoft 

W. Slivka and Jeffrey S. Webber on July 3, 2001. 

62. A true copy of die 1*668 Patent is attached as Exhibit D hereto, and is 

incoiporated herein by reference. 

Microsoft owns aU ri^t, title and interest in the '668 Patent. 


Corporation as the assignee of Benjamin 


63. 


64. 
65. 


InterTmst has bad:actual notice of the '668 Patent. 


InterTrust ha^ infiinged one or more claims of the '668 Patent, in violation 

of at least 35 U.S.C, § 271(a, b, c). '« 

66. InieiTrusfs infiinjgement of the '668 Patent has caused and will continue to 
i i- 

cause Microsoft damage, including iireriUble harm for which it has no adequate remedy at law, 

AVER FOR RELIEF 
WHEREFORE, Microsoft prays for the following relief: 
A. • The Court enter judgment against InterTmsT on, and dismiss with 
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2 
3 
4 
5 
6 
7 
8 
9 
10 
11 
12 
13 
14 
15 
16 
17 
18 


prejudice, any and all claims of the SecondjAi^ended Complaint; 

B. The Court enter jod|iniit declaring that Microsoft has not infringed, 
contributed to inftingement of. or indiiced|infiingement of the '683 Patent". 

lent declaring that Microsoft has not infringed, 
contributed to infringement of. or induced|;infiingement of the '193 Patent; 

D. The Court emer juJgment declaring that Microsoft has not infringed, 
contributed to infiingement of. or inducet jinfringement of the '504 Patent; 

E. . The Court enter judgmmt declaring that Microsoft has not infringed, 
contributed to infiingement of, or induce(t: infiingement of the '861 Patent; 

The Court enter ju( ^ment declaring that the '683 Patent is invalid; 
The Court enter ju( jgment declaring that the ' 193 Patent is invaUd; 
The Court enter julgment declaring that the '504 Patent is invalid; 


F. 
G. 
H. 
L 
J. 

inequitable conduct; 

K. 
L. 
M. 


The Court enter juSgment declaring that the '861 Patent is invaUd; 
The Court enter jutgment that the '861 Patent is unenforceable due to 

I 
I 

The Court enter ju3gmeiit that InterTrust has infiinged the '671 patent; 
The Court enter juagment that InterTrust has infringed the '668 patent; 
A permanent mjuiiction prohibiting InterTrust. its officers, agents, servants, 


19 I employees, and all persons in active, concisrt or participation with them from infringing the '671 


20 


21 


22 


23 
24 
25 


intciTrust of damages and attorney fees, pursuant to the 


and '668 Patents; 

N. An award against 
provisions of 35 U.S.C §§ 284, 285. 

0. An award to Miclsoft of prejudgment interest and the costs of this action. 

, i 

P. The Coun award io Microsoft its reasonable costs and attorneys' fees; and 

I 

Q. The Cotirt grant to' Microsoft such other and further relief as may be 
26 I deemed just and appropriate. 


27 /// 


28 
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Pursuant to Fed. R. Ci> 

trial by jury. 

DATED: September 17, 2001 
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58(b), Defendant Microsoft Corporation demands a 
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The following paper was originally published in the 
Proceedings of &e First USENIX Workshop on Electronic Commerce 
New YorkJNew York, July 1995. 
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The DigiBox: 

A Self-Protecting Container for Information Commerce 

Olin Sibcrt 
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1 408 774 6100 
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Abstract 

Information Commerce is a business activity carried out among several parties in which information car- 
ries value and is treated as a product. The inforniation may be content, it may be returned usage and mar- 
kering data, and it may be representative of financial transactions. 

In each of these cases the information U valuable and must be kept secure and private. Traditional 
approaches secure the transmission of that information from one point to another: there are no persistent 
protections. Protection of all of these components of information commerce for all parties m a transaction 
value chain is necessary for a robust electronic infrastructure. 

A prerequisite to such an environment is a \ cryptographically protected container for packaging 
information and controls that enforce information rights. This paper describes such a container, called the 
DigiBox'^, EPR has submitted initial specifications for the DigiBox container to the ANSI IISP Electronic 
Publishing Task Force (EPUB) within the User/Content Provider Standards Working Group (WG4). 


1 Introduction truly support electronic commerce. These tools 

provide for the flow of products and services 

As services and products in modem commciijc through creators*, providers', and users' hands- 

increasingly take electronic form, traditional com- They enable the creation, negotiation, and cnforce- 

mercc is evolving into electronic commerce. This ment of electronic agreements, including the evo^ 

includes both creation and enforcement of vario,us lution of controls that manage both the use and 

agreements between parties in an electronic coin- consequences of use of clectiomc content or ser- 

mercial relationship. It also includes enforcing tie vices. In addition, these tools support "evolving 

rights of these parties with respect to the secure agreements that progressively reflect the requure- 

management of electronic content or services ments of fUrtfier participants in a commercial 

usage, billing, payment, and related activities. model. 

Participants in electronic commerce [3,4] will need 

To save money, to be competitive, and to be e&- ^^^^ mechanisms such that: 
cient [1 ,2], members of modem society will shortly 
bt using new infonnatiQn technology tools that 
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1 , Infonnation providers can be assured that;their 
content is used only in authorized ways; 

2. Privacy rights of users of content are pre- 
served; and 

Diverge business models related to content can 
be electronically implemented. ^ 

The Internet and other infonnation conunerce 
infrastructures will require a management compo- 
nent that enforces such rules, ensuring a- safe, 
coherent, fair, and productive community. Tbis 
management component will be critical to the elec- 
tronic higbway*s acceptance. Without rules to pro- 
tect the rights of content providers and other 
electronic community members, the electronic 
highway will comprise nothing more than a collec- 
tion of limited, disconnected applications. 

Analysts have concluded that content will consti- 
tute the largest revenue-generating component of 
the information superhighway (5). It is also clear 
tiiat unfettered access to content requires that con- 
tent providers be able to maintain control over lit- 
erary or copyrighted assets. Many analysts 
conclude that this will be one of the key bottiLe- 
necks in the implementation and deployment of 
New Media. 


requires a substantial manufactuiing investment 
Figure 1 illustrates a simplified traditional infonna- 
tion economy: physical goods flow from a pub- 
lisher (manufefitiirer) to a customer, in response to 
orders and followed by paymeaita. The autiior's 
relationsh^ with the publisher may be more light- 
weight, but the author is nonetheless dependent on 
the publisher to report sales and make royalty pay- 
ments in accordance witfi the authoT*s contract In 
addition, a financial institution provides payment 
processing and clearing services for all parties. 


Financial 
Institution 



2 Information Commerce and Digital 
Value Chains 

Information commerce is often considered' a 
wholly new concept, made possible only through 
the use of networks and computers. In fact/ a 
robust information economy has existed foriccnm- 
ries, involving trafficking in physical representa- 
tions of information such as books, newspapers, 
and so on. Because such comrocrcc involves: ph^'si- 
cal goods, there is a non-negligible floor to the cost 
of handling infonnation goods. The new aspectsiof 
the electronic information economy are that j(he 
information itself is the entire product and fliat jthe 
product can be distributed at negligible marginal 
cost. 

The traditional information economy in physical 
goods is publisher-centric, because creation' of 
itvformauon ^oods— particularly low-cost goods- 


Figure 1 . Traditional infoimatioa economy. 

Because of the flexibility afforded by electronic 
mechanisms, information commerce is evolving 
from indirect, advertiser-supported, mass-audi- 
ence media to a new, niche-audience-oriented busi- 
ness model. In this system, members of the 
electronic community, wjth.or without the eco- 
nomic support of advertisinB, pay providers 
directly for what they want to receive. Business-to- 
business purchasing is steadily evolving into a 
direct electronic ordering model. 

Figure 2 illustrates the flexibility possible in new 
electronic information commerce models. 
Although there is still a role for publishers, this 
role no longer involves physical goods. Rather, the 
publisher is responsible for packaging and aggre- 
gating information goods and control information. 
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then inakiDg them available to customers. Similar 
to a manufacturing/distribution/retail chain fer 
physical goods, the electronic model pcnnits infor- 
mation retailers, and even end customers, to 
package and redistribute different aggregations of 
information while ensuring that the appropri^ 
control rules are maintained. A clearinghouse 
ensures that usage information and payments are 
provided directly to anthers and publishers; ihc 
payments themselves are made through traditional 
financial institutions. Because control rules are 
associated with information, a variety of payment 
and other business models can be associated with 
the same content (e.g., purchase versus pay-per- 
use), ■'. 


2.1 Protecting All the Information in 
Information Commerce 

The very properties that make *the net*' atnactive 
as a distribution medhim— case of man^)ulaiing 
information in electronic form — also appear to 
make these protections' intractable. Addressing this 
dichotomy requires a paradigm shift in computer 
architecture to introduce the concept of a "secure 
processing" environment in which protected infor- 
mation can be manipulated witbom being subject 
to external tampering or disclosure. A preicquisite 
to such an environment is a cryptographically pro- 
tected "container** for seamlessly packaging infor- 
mation and controls diat enforce information use 
ri^ts. 


Author 
Crtates 


Finoatitl 
Insdtudoa 


CoAunt 



Payment ^ 'j 
AuthorizaUooC 


Aggregated TsymeiK, 
Usage Infonnaiiooi 


PubUther 
Distribute 


\Contcnl 



Ctutomcr 

Extracted 

Customer 

Pays per Use 

ContenT 

Purchases 



Con teal 


Redistributes 



Usage Re]:iOfts 


Figure 2. Electronic infotmation economy. 


li 


The conversion from traditional commercial distri- 
bution channels requires key foundation technci|lo- 
gies and results in a fundamental shifl in existing 
infrastructures. This channel transformation [yill 
create a new electronic digital distribution hadustiy. 
Digital distribution employing the DigiBox con- 
tainer architecture and its associated support envi- 
ronment, InterTrust^, can play a critical role in 
this transformation of the communication, m^dia. 
and infoTmation technology markets. 


The DigiBox described by this paper is such a con- 
tainer. 

The need for various information commerce com- 
puters and appliances to interoperate requires that 
this container format and its access methods be 
standardized. EPR has submitted initial specifica- 
tions for Ae DigiBox container to the American 
National Standards Institute (ANSI) Information 
Infrastructure Standards Panel (JUS?) ihrough the 
Electronic Publishing Task Force (BPUB) in the 
User/Content Provider Standards Woridng Group 
(WG4). 

The primary goal of information protection is to 
permit proprietors of digital infomiation" (i.e., the 
artists, writers, distributors, packagers, market 
researchers, etc.) to have the same type and degree 
of control present in the **p^er wodd." Because 
digital information is intangible and easily dupli- 
cated, those rights are difficult to enforce with con* 
ventional information processing tecJmology. 
Many types of rights (compensation, distribution, 
modification, etc.) are associated with the various 
elements of information commerce, and these 
information property rights take many forms. At a 
high level, there is the legal definition of "copy- 
right,'* codified in U.S. law [6-9] and the Berae 
Convention. This gives copyright holders a legal 
right to control bow copyrighted information is 
handled. In addition, various high-level rights are 
conferred by contractual airangements between 
primary- rightsholders and other parties. 
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For example, the protections needed for content 
elements incoiporate the licensing provisions for 
tiie intellectual property rights of Uie content righ}- 
sholders. In a broader sense, diese rights include 
control over several activities: the right to be coin- 
pensaied for use of the property; the right to con- 
trol how content is distributed; the right to prevent 
modificatioii of content by a distributor, "fair use" 
rights; the rights to the usage data, privacy rights tof 
individuals, and so on. j 

In tiie realm of physical goods, these rights afC 
enforced by a combination of legal and tecbnickl 
means. However, the technical means can be (and 
are) unsophisticated because the technology for 
violating rights is relatively ej^ensive and timje- 
consuming— in comparison to equivalent activities 
with respect to digital information. Photocopyiig a 
book or copying a video cassette is inherently m^ 
labor intensive and costly than copying a file.' ^o, 
while defeating technical means of enforcemCTtjis 
(relatively) expensive, it can be done — and often 
the legal means to deter this are inadequate. <t 

'i 

2,2 Information Commerce — ^Not Just 
Payment ': 

Rights protection is also a fundamental aspect ^of 
commerce. Commerce is not just a way fof two 
parties to pay each other for something. Rather; il 
is an extraordinarily rich web of relationships 
among parties that concerns payment, negotiation, 
control, advertising, reporting, auditing, and a yim- 
ety of other activities. These activities are impor- 
tant aspects of the transaction relationships. Often 
the information carried in these nrports, audits^ itod 
the like is highly valiiablc and highly confidential, 
perhaps even more valuable than the content that is 
the subject of the infonnation commerce at hajnd. 
These activities too are perfonned and controlled 
in the "paper world"' by legal and technical means, 
but there are no widely used models for their elec- 
tronic equivalents. i! 


Figure 3 shows some of the operations that could 
occur in true electronic conmierce, using the Inter- 
net World-Wide Web [10] mechanisms as an exam- 
pie. Creators originate content and apply rules 
(e.g.. **pay author $1.00/use") for its use. Distribu- 
lois repackage conlenX, appW^g additional rules 


(e.g., **pay $5,00 for the collection, then pay the 
creatcrr,** "report use of each item*0- Users receive 
contisnt and operate on it, geneiating billing reports 
and usage reports ftat are delivered to a clearing- 
house and paid or summarized back for the origi- 
. nating parties. This stnicturc is very rich and is 
capable of supporting many business models. 
There arc multiple flows of information in many 
different directions amongst the parties involved in 
ti)e transactions. 

Anotiier example is that of an advertiser (acting as 
distributor, or witii a distributor). The advertiser 
might have a rule that offers a discount, or no 
charge at all, but only if the user views the adver- 
tisement and agrees to have that fact reported to the 
advertiser. 

It is relatively simple to devise schemes for parties 
to pay each otiier electronically (for example, Digi- 
Cash [11], NelBilJ [12], Open Maricet [13], SNPP 
[14],NetGhcque [15], First Virtual [16], etc.). Pay- 
ment, however, constitutes only one — and perhaps 
the simplest one — of the means in which parties in 
commerce interact All the other information com- 
Dicice components must be accomplished with the 
same needs for security, privacy, and integrity. In 
fact, these aspects of electronic commerce, includ- 
ing rights protection, are strongly intertwined in 
the digital economy, because much digital com- 
merce concerns information and innovative busi- 
ness models for information commerce. 

3 Existing Approaches to Information 
Commerce 

Information proprietors employ a variety of tech- 
nological protection approaches today. These 
approaches are generally "point solutions,'* in that 
they protect a specific type of property in a specific 
context and enforce only specifically defined 
rights — typically only the right to compensation 
for use. Because the technologies are limited, the 
market is firagmcnted, arul there are no general pro- 
tection solutions.' . 
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Figure 3. Multi-party Iniemet infonnation commerce, 


3.1 No Protection I 

i 

Much digital property is distributed without aiiy 
technological enforcement for property rights, (m 
the assumption that legal means suffice. This 
approach works well enough for many low-value 
properties, but it has the disadvantage of raising the 
price U) legitimate users who must pay for both 


tiieir own and illegitimate use. In many cases, how- 
ever, this cost is negligible, and no protection is an 
economically sound choice. Even for content that 
is free, however, a creator may wish to impose 
some rules for reporting or some access control Of 
course, privacy rights of users will be a coneem to 
many. 


j 
1 
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3.2 License Managers I 

For some valuable software properties, license 
manager are used. Because a software property is 
dynamic (executable), it is feasible to restrict it 69 
that it functions properly only through interaction 
wifl) a license manager process. In general, there is 
no protection of usage data m these schemes. In 
some cases this technique has been applied to c<m- 
tent protection, but only with limited success [l^j, 
18]. '1 

3.3 Cryptographic Unlock 

Some static properties (fonts, for example; also 
some installable software) are protected by a sim- 
ple '^unlock" scheme: a purchaser makes a pur- 
chase, for example by telephone with a credit cai|, 
and receives a cryptographic key in return. Tins 
key can then be used to "unlock" one property 
from some widely distributed medium (e.g^ CD- 
ROM or network download). This mechanism jis 
relatively inflexible, and its inherently maniwl 
nature makes it expensive. 

3*4 BiUing Schemes 


Various billing schemes (as mentioned above) per- 
mit purchase of information following what ;ts 
essentially an electronic check or electronic credit 
draft model. These methods are suitable for con- 
ventional transactions, but not for the enormous 
volumes of Cmdividually) very low-value transfifc- 
tions that would be generated using a complex dig- 
ital property. 

3.5 Secured Delivery 

Various secured delivery systems (e.g., SSL [19], 
SHTTP [20]) share the same problems as cryirto- 
graphic unlock, but in a network context They arc 
only point-to-point solutions, with the information 
(content, usage data, etc.) at each site being left 
unprotected once the delivery has occurred. Fur- 
thermore, they are inherently online systems: it is 
not practical to decouple the delivery of informa- 
Uon from payment for its use. 


4= Information Protectioii Architecture: 
• .tnterlVttst and DigiBox 

EPR has produced the InterTrust Vntual Distribu- 
tion Architecture to solve unmet, critical needs of 
electronic cormnerce. Almost any imaginable 
information transaction can be supported by Inter- 
Trust A few examples include distribution of con- 
tent (e.g., text, video, audio) over networics, 
selective release of data from a database, con- 
trolled release of sensitive information, and so on. 
InterTrust can also support ttie secure communica- 
tion of private information such as EDI and elec- 
tronic financial transactions, as well as delivery of 
thft' "back channel" mariceting and usage data 
resulting from trar^actions. 

DigiBox is a foundation technology within Inter- 
Tnist It provides a secure container to package 
infbimation so that ttie information cannot be used 
except as provided by the rules and controls associ- 
ated with tiie content InterTrust rules and controls 
speciiy what types of content usage are permitted, 
as well as the consequences of usage such as 
reporting and payment 

Within InterTrust, DigiBox containers can enforce 
^ "distributed electronic contract" for value-chain 
activides functioning within an electronic distribu- 
tion environment This unique approach underlies 
EPR's information metering and digital rights pro- 
tection technology. Electronic commerce infra- 
structure participants can use InterTrust to 
substantially enhance their network, security, or 
payment method solutions. 

The DigiBox is a container for both digital prop- 
erty (content) and controls. It is used in conjunc- 
fion with a locally secured rights protection 
application (discussed further below) to make con- 
tent available as governed by arbitrarily flexible 
eontrols- 

The DigiBox container mechanism is implemented 
in; a set of platform-independent class hbraries that 
provide access to objects in the container and 
extensions to OpenDoc and OLE object technolo- 
gies. DigiBox allows rights management compo- 
nents to be integrated with content in highly 
flexible and configurable control stmctures. Digi- 
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Box rights management components can be inte 
grated with content in a single deliverable, or some^ 
or all of the components can be delivered indepen^^ 
dentiy- DigtBox rights management componcpl^ 
enable true superdistribvtion [21] and can support 
virtually any network topology and any number ofi 
participants, including distributors, ledistributors, 
information retailers, corporate content users, anc 
consumers. 

4.1 Content 

The digital information in a DigiBox (one or more 
"properties") is information in any form. It may be 
mapped to a specific compound object format (c.g,| 
OpenDoc, OLE, PDF), or may be application spe: 


cific. 
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Further, it may be delivered in stream or otha 
coramunicatioii-oriented forms, not just in a file; 
like container. | 

4.2 Controls ? 

Conliols specify rules and consequences foropcr% 
tions on content. Controls are also delivered in \i 
DigiBox, and the controls for a property may bjc 
delivered either with the property or independent! j. 
Controls arc tied to properties by cryptograplu* 
means. : 

Because controls can be delivered with properties 
in a container, the DigiBox supports superdistribe- 
tion. 

■ H 

4.3 Commerce 

Commerce takes place governed by controls. Tms 
may involve metering, billing for use, reporting pf 
usage, and so on. These operations take place 
locally in a secure envirormient, and they general e 
audit trails and reports that must be reported pes 
odically to clearinghouses. { 

; • i 

5 DigiBox Implementation 

The DigiBox is a structure that can hold, in a pro- 
tected manner, information commerce elements of 
all ViudS', COBienl, usage information, representa- 


tion of financial transactions (e.g., electronic cash), 
and! other digital elements of infohnation com- 
merce. . 

5,1 i Container Logical Stmctnre 

Figiire 4 shows the logical structure of propeitxes 
and' control sets in two containers. Container Ci 
holis two properties, P, and Pj. and one control set, 
CSj. that applies to property P|; container Q con- 
tairjs two control sets and no propaties. As shown 
• in the example, each of these elements. has a title 
attribute to provide a human-readable description 
of bje element and, for control sets, an attribute 
indicating to other elements die control set 
applies. 

A control set specifies rules and consequences, 
sutih as pricing, reporting, and so on, for the proi>- 
erties to which it ^Ues. A user holding just this 
container could use (e.g., view, print) content from 
Pjl_though only as specified by CSi, Because 
there is no control set applying to Pj in that con- 
tainer, would not be usable in any way. 
j 

A user holding both containers could use property 
pj as specified by CSj. and in addition has the 
chMce of whether to designate CS, or CS3 when 
using P|. CS3, ^fMcii describes itself as "discount," 
is likely to be the user's preferred choice. 

The iDigiBox includes several elements: organiza- 
ticuial structures, properties, controls, and support- 
ing data items. Almost all the infonnarion in a 
D^gSox is enciyptcd, as described below, and 
access to the encrypted form is provided through a 
storage manager as appropriate, depending 00 how 
the DigiBox is delivered (e.g., as a file or as a data 
stijeam). 

5:2 Container Pbysicai Structure 

Figure 5 is a schematic picnire illustiatiiig the 
physical structure of a DigiBojc container. (Some 
elcinents have been omitted for clarity.) It begins 
with a container header strucnire containing 
descriptive and organizational information about 
th'e container. Part of the container header is 
encrypted (both for secrecy and for integrity pro- 
tection); the rest is public organizational informa- 


i 
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Property 
Pi 


Title ^ giraffe 



Control Set 


Applies to = Pi 


Title = regular 


Property 
P2 


Title = elephant 


Container C\ 


Figure 4. Container lOfiical structure. 


tioiL The header is followed by additionaJ 
container-wide structures such as the transport 
block (TKB) and tiie container table of coriten 
(TOQ, some of which are encrypted and 
not. 


key 


others 


These organizational elements are followed by the 
stnicnires defming the container's content (e.g., 
properties and control sets)^ As shown in the fig- 
ure, a property is represented by a property header, 
property auributei, and data blocks composing tiie 
property. As shown, the header is encrypted and 


I; 


! Control Set 
CSj 


Applies to = P| 


Title = discount 


Control Set 
CSj 


Applies to = P2 


Title = discount 


Container 


tlie attributes are not; the data blocks may be 
wholly or partly encrypted, or not at all, depending 
on security requirements. 

The figure shows an example property consisting 
of a j multimedia property formed from a pair of 
synchronized data streams for audio and video. In 
this example, each video block is mostly unen- 
crypted so that access can be rapid while Still main- 
taining reasonable security — encrypting even 10 
percent of an MPEG stream renders it effectively 
useless for illicit copying. On the other hand, the 
audio is entirely encrypted, and each audio block 
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CoDtainer Coniaioer 
Header TKB 


Shading indicates encryption: 
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<- Unencrypted 
<- Encrypted by Key I 
- Euciypied by Key 2 


Figure 5. Container physical format 


U5CS four distinct keys, because tfie content propri- 
etor requires much stronger security for audio than 
for video. 

A property is represented as one or more proper&f' 
sections, each of which is independently associatej j 
with control information, and which may also be 
stored and accessed independently. A property, f< r 
example, might be a collection of clip-art image t, 
and each image might be a property "chunk," with 
its own control specifying how that image's creator 
is compensated. 

Controls can map to property chunks at arbitrary 
granularity and can enforce aibitrary organiza- 
tional structures within the property (such as a file 
hierarchy). Controls can apply to individual bytes. 


frames 
and 
control 
not 


of movie, segments of a musical piece, 
so on, because the mapping is performed by a 
iirol process specified by the control structure, 


simply via a table-driven data structure. 

i ! 

SiJ3 i . Cryptographic Techniques 


are 


"IJici : high-level elements in a DigiBox 
encr^ted with a transport key that is normally 
djeriyed (by exclusive OR) from two parts: one that 
isj delivered b the DigiBox itself, encrypted with a 
public key algorithm, and the other that is stored in 
protected storage locally. The locally stored part is 
siared among all the local nodes capable of pro- 
cessing that DigiBox, but the part in the DigiBox is 
uhique. This separation provides protection against 
accidental or malicious disclosure of either part 
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In Protected 
Local Storage 


Decrypted Header Informatioa 
Figure 6. Container transport security. 


Figure 6 illustraics how the transport key (TK) is 
derived. The transport key block (TKB) contains 
one or more slots, each of which contains a partial 


TKEK 
Storage 


ID = 6 

TKEK^ 


TKEK7 

ID = 8 

TKEKg 

ID = 30 

TKEK30 

ID'^Sl 

TKEIC3, 

ID = 32 

TKEK32 

ID^33 

TKEK33 


Partial TK 
Storage 


ID»73 

. Partial TK73 

10 = 81 

Partial TKfii 

ID -90 

Partial TK90 

ID =142 

Partial 

ID =176 

Partial 1X17^ 

ID = 177 

Partial 1X177 


transport key cnciypted under a different transport 
key enciypiing key (TKEK.). Each TKB slot identi- 
fies the TKEK used, and a matching TKEK is 
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selected from local protected storage. Dccryptmg 
the slot yields a partial TK, which is comb^ed 
with its correspondirg partial TK again from:!pro- 
tected local storage to yield the actual TK for 
decrypting the container header. 

'< 

u 

The data for the property itself is encrypted "with 
other keys ("content keys") that are themselves 
delivered in encrypted high-level structuresj this 
approach permits the keys for a property 50 be 
delivered entirely separately from the propeijy or 
its controls. Multiple keys, in a wide variety of 
key-mapping schemes, are used to encrypt the 
data, limiting the loss that would occur from dis7 
closure of any one key. j 

I 

All DigiBox control structures are both encrypted 
and verified for integrity with a cryptographic hash 
function. Several cryptographic .algorittmis are 
supported for these control stiucnires (principally 
for export connol reasons), and arbitrary I algo- 
rithms are supported for encryption of the data. 

5.4 Security Characteristics ! 

The DigiBox. cryptographic structures are designed 
to be secure even in the face of loss pf Individufli 
key components, and to minimize the damage in 
case a key or processing environment is comprb- 
miscd. The system is designed to provide commer- 
cially acceptable risks and losses for a variety of 
business models. 


The basic algorithms are strong: Triple [22] 
and RS A [23] are preferred. This security, is. of 
course, only as strong as the tamper-resistance of 
the local processing environment The preferred 
implementation of DigiBox proccssmg relics on|a 
"secure processing unit" (SPU) that contoins ja 
CPU, memory, program storage, and key storage in 
a single tamper-resistant hardware packa^. 
Although these are not widely available to<^y, the 
variety of applications they might support makesjit 
likely that such SPUs will become widely mi- 
grated into common computing platforms. When 
ninning in an SPU, the DigiBox processing and 
control mechanisms are sufficiently well protected 
to support most commerce applications. 


he absence of an SPU, other approaches are 
for many business models. In feci, a soft- 
implementation is sufficient for xnany 

^ because much content is of relatively - 

vahie and is used in a context (business to 
iness) where a modest level of fraud is both less 
^ly and more tolerable. As long as flie software 
Moderately difficult to defeat and tools to defeat 
no legitimate purpose, business models can 
.^ported where some risk of loss is acceptable, 
he world of electronic commerce, just as for tra- 
mal commerce, security is not absolute: it is 
a fector to balance against the cost of loss and 
fraud. 


In 

useful : 
waie-only 
api Ucatioos, 1 
lovi 
bus 
likely 
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Conclusions 


e DigiBox is one component of a general-pur- 
po'iC electronic commerce solution tiiat rests on 
thi ee basic principles; rights protection, interopera- 
hH ity, and strong security. 

El^tronic commerce, and infonnation commerce 
in particular, needs a robust information protection 
m echanism, including rights protection and con- 
trols, not just payment systems. As the elcctromc 
wl>ild evolves, however, and moves forward from 
sh nply emulating traditional transactions into 
er tircly new business models, rights protection and 
cc ntrol will become the predominant issues. 

Protection of intellccmal property rights in infor- 
m ition requires strong cryptography as well as a 
fligdble infrastructure for controlling use of the 
information, A standard protected container for 
ii formation is necessary to support intcroperabil- 
it f — most existing schemes tightly bind the creator 
'protected information and the software that pro- 
cisscs it. A standard container can rationalize 
ii formation commerce and reduce costs for all par- 
ticipants. 

the long term, general-purpose secure electronic 
ommercc will need pervasive deployment of 
ti mper-resistant hardware devices to perform 
sectu'e processing of protected content. However, 
as these solutions are developed, many business 
models can be accommodated with weaker or less 
<l)mplete solutions because the risk and expected 
li>sses are commercially acceptable. 
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Business-to-busincss purchasing is steadily t^oly 
ing into a direct electronic ordering model Future 
communications and media jnaikets wiU become 
increasingly segmented and, specialized- 'in 
response to customer preferences and needs] and 
involve increasing, and more sophisticalcd, direct 
interaction between consumers and providcta. 
These markets and their value diains (with or wifli- 
out intcrmediaiy distributors) viill requite secure 
metering and control tools that enable a u^ to 
efficiently and economically tailor resources to tus 
or her own desires. i 

During die next decade, digital delivery of tradi- 
tional electronic products, such as inforaiatipti 
databases and software, will be joined by a r^idlj 
growing array of both New Media and electroni- 
cally distributed traditional content The conver- 
sion from traditional models require j Ice^ 
foundation technologies and will result in a fimda- 
mental shift in current infrastructure. This traisfor 
mation will create a new distribution industry 
Digital distribution employing "a universal conten; 
and commerce container can play a critical role ii i 
this broad economic transformation, 1 ' 
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